Vigor Router supports using an Active Directory server or LDAP server to authenticate VPN clients or LAN clients. However, it is not easy to get the right configurations in the beginning because there are various Active Directory/LDAP servers' structures. This document provides some tips on troubleshooting LDAP issues.
To check if the user accounts are created correctly on the Active Directory/LDAP server, we can use the Ldp tool, which is included in the support package provided by Microsoft.
The steps are:
Bind Failed and
Invalid Credentials, that means the account or the password is not correct. Please recheck the user settings on the server.
Authenticated,it means the binding is successful, and we can move forward to the next step.
1. Use Simple mode to verify if Vigor Router can bind the user account that has been tested with the Ldp tool successfully first.
2. Check if
cn is configured for Common Name Identifier, and use the user account without cn=vivian that has been authenticated by LDAP server with Ldp tool for Base Distinguished Name.
3. Verify by creating a VPN connection. For the detailed steps, please refer to Authenticate Remote Dial-In VPN Clients with AD/LDAP Server
If Simple Bind by LDP tool works but VPN still cannot pass the Active Directory/LDAP authentication, please provide the information below and then email them to [email protected] for our analysis.
Was this helpful?